Differences

This shows you the differences between two versions of the page.

--- paloaltonetworks:logs:syslog:general [2021/04/06 10:48] – bstafford
+++ paloaltonetworks:logs:syslog:general [2022/11/23 12:49] (current) – external edit 127.0.0.1
@@ Line 318: / Line 318: @@
 <code>( eventid eq general ) and ( description contains 'running configuration synchronized with HA peer by admin' )</code>
 <code>( eventid eq general ) and ( description contains 'Session for user svc_ossec via CLI from 192.168.1.1 timed out' )</code>
-<code>( eventid eq general ) and ( description contains 'Succeeded exporting config bundle via ssh to 192.168.1.1. This system is for the use of authorized users only.     ..Individuals using this computer system without authority,..or in excess of their authority, are subject to having   ..all of their activities on this system monitored and     ..recorded by system personnel.....In the course of monitoring individuals improperly using ..this system, or in the course of system maintenance, the ..activities of authorized users may also be monitored.....Anyone ' )</code>
+<code>( eventid eq general ) and ( description contains 'Succeeded exporting config bundle via ssh to 192.168.1.1' )</code>
 <code>( eventid eq general ) and ( description contains 'Succeeded exporting traffic log via ssh (last-calendar-day) to 192.168.1.1' )</code>
 <code>( eventid eq general ) and ( description contains 'Succeeded marking traffic log as exported' )</code>